» 2022 » 5월

CVE-2022-26690

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-26690

Description: A race condition was addressed with additional validation. This issue is fixed in macOS Monterey 12.3. A malicious application may be able to modify protected parts of the file system.

Source: CVE-2022-26690

CVE-2022-26691

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-26691

A logic issue was addressed with improved state management. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. An application may be able to gain elevated privileges.

Source: CVE-2022-26691

CVE-2022-22674

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-22674

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in macOS Monterey 12.3.1, Security Update 2022-004 Catalina, macOS Big Sur 11.6.6. A local user may be able to read kernel memory.

Source: CVE-2022-22674

CVE-2022-22673

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-22673

This issue was addressed with improved checks. This issue is fixed in iOS 15.5 and iPadOS 15.5. Processing a large input may lead to a denial of service.

Source: CVE-2022-22673

CVE-2022-26688

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-26688

An issue in the handling of symlinks was addressed with improved validation. This issue is fixed in Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. A malicious app with root privileges may be able to modify the contents of system files.

Source: CVE-2022-26688

CVE-2022-22672

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-22672

A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 15.4 and iPadOS 15.4, Security Update 2022-003 Catalina, macOS Monterey 12.3, macOS Big Sur 11.6.5. A malicious application may be able to execute arbitrary code with kernel privileges.

Source: CVE-2022-22672

CVE-2022-22676

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-22676

An event handler validation issue in the XPC Services API was addressed by removing the service. This issue is fixed in macOS Monterey 12.2. An application may be able to delete files for which it does not have permission.

Source: CVE-2022-22676

CVE-2022-22675

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-22675

An out-of-bounds write issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.5, watchOS 8.6, macOS Big Sur 11.6.6, macOS Monterey 12.3.1, iOS 15.4.1 and iPadOS 15.4.1. An application may be able to execute arbitrary code with kernel privileges. Apple is aware of a report that this issue may have been actively exploited..

Source: CVE-2022-22675

CVE-2022-31265

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-31265

The replay feature in the client in Wargaming World of Warships 0.11.4 allows remote attackers to execute code when a user launches a replay from an untrusted source.

Source: CVE-2022-31265

CVE-2022-30508

Posted on 2022년 5월 27일2022년 5월 27일 by admin

CVE-2022-30508

DedeCMS v5.7.93 was discovered to contain arbitrary file deletion vulnerability in upload.php via the delete parameter.

Source: CVE-2022-30508